zeal - sustainable strategy - since 1980
    • wpml-ls-flag
    • wpml-ls-flag

Privacy Policy

This website is operated by zeal aps (“we” or “us”). By using and visiting our website and by submitting your personal information to us you agree to us using your personal information as set out in this privacy policy.

If you want to know about how we use cookies please click here.

We respect the privacy of users of our website and recognise that when you choose to provide us with information about yourself, you trust us to act in a responsible manner with that information. This privacy policy contains important information about how we use your personal information.

1. Data Controller

This privacy policy applies to the processing of personal data by:

Company: zeal aps
CVR no.: 36701811
Address: Grumstolvej 66, DK-8270 Højbjerg, Denmark
E-mail: [email protected]
Telephone: +45 7777 5150

The company is the data controller for the processing of your personal data.

2. Categories of Personal Data

We process personal data depending on how you interact with the company.

2.1 Clients in the advisory business

  • Name
  • E-mail address
  • Telephone number
  • Company and job title
  • Correspondence and contractual information
  • Invoicing information

2.2 Customers in the book webshop

  • Name
  • Billing and delivery address
  • E-mail address
  • Telephone number
  • Order details and purchase history
  • Payment information (note: payment card data is not processed by us but by an external payment provider)

2.3 Participants in the research and/or podcast project

  • Name
  • Contact details
  • Voice recordings
  • Interview data and transcripts
  • Any professional or organisational information shared during interviews

2.4 Job applicants

  • Name
  • Contact details (e-mail, telephone)
  • CV and job application
  • Educational and professional background
  • References and recommendations, if provided
  • Any other information you choose to share as part of your application

2.5 Website users

  • IP address
  • Browser and device information
  • Information submitted via contact forms

3. Purposes of Processing

We process your personal data for the following purposes:

  • Provision of advisory services
  • Administration of client relationships
  • Processing and delivery of webshop orders
  • Invoicing and accounting
  • Communication with clients and business partners
  • Recruitment and processing of job applications
  • Conducting research and podcast production in connection with the industrial PhD project
  • Compliance with legal obligations
  • Operation, security, and improvement of our website

4. Legal Basis for Processing

The processing of personal data is based on one or more of the following legal grounds:

  • GDPR Article 6(1)(b) – performance of a contract or steps prior to entering into a contract (including job applications)
  • GDPR Article 6(1)(c) – compliance with a legal obligation (e.g. bookkeeping legislation)
  • GDPR Article 6(1)(f) – legitimate interests pursued by the company, including business operations and recruitment
  • GDPR Article 6(1)(a) – consent (in particular in relation to podcasts and research activities)

Where processing is based on consent, such consent may be withdrawn at any time.

5. Data Processors and Recipients

We use external data processors and collaboration partners, including:

  • Microsoft Office 365 (e-mail, document management, calendars and collaboration tools)
  • WordPress (website and webshop platform)
  • Cloudflare (DNS, CDN and security, including protection against abuse)
  • Matomo Cloud (web analytics and statistical tracking)
  • Web hosting and webshop provider
  • Payment service provider
  • Accounting and audit services
  • Aalborg University (in connection with the industrial PhD project)

All data processors process personal data solely on our instructions and subject to data processing or collaboration agreements.

6. Transfer of Personal Data to Third Countries

When using Microsoft Office 365, Cloudflare, and Matomo Cloud, personal data may be transferred to countries outside the EU/EEA. Such transfers are carried out in accordance with the GDPR, including through the use of the European Commission’s Standard Contractual Clauses or other valid transfer mechanisms.

7. Cookies and Tracking

We use cookies and similar technologies on our website.

7.1 What are cookies?

Cookies are small text files stored on your device when you visit our website. They are used to ensure the functionality of the website, enhance the user experience, and collect statistics.

7.2 Necessary cookies

We use necessary cookies via WordPress and Cloudflare to ensure:

  • Technical functionality
  • Security and stable operation of the website
  • Protection against misuse and attacks

These cookies cannot be disabled.

7.3 Statistics and analytics (Matomo Cloud)

We use Matomo Cloud to analyse how our website is used in order to improve content and functionality.

  • IP addresses are anonymised
  • Data is used exclusively for internal analytical purposes
  • Information is not shared with third parties for marketing purposes

The legal basis is either your consent (GDPR Article 6(1)(a)) or our legitimate interest (Article 6(1)(f)), depending on the specific cookie configuration.

7.4 Cookie consent

When you visit the website for the first time, you will be asked to provide consent for the use of cookies. You may withdraw or change your consent at any time via your browser settings or any available cookie settings on the website.

8. Storage Periods

We store personal data only for as long as necessary for the purposes for which it was collected:

  • Client and webshop data: up to 5 years following the end of the customer relationship (pursuant to accounting legislation)
  • Job applications: up to 6 months after completion of the recruitment process, unless longer storage is agreed
  • Research and podcast data: for the duration of the project and any required retention period thereafter
  • Consent-based data: until consent is withdrawn

Thereafter, data will be deleted or anonymised.

9. Data Security

We have implemented appropriate technical and organisational security measures to protect personal data against accidental or unlawful destruction, loss, alteration, unauthorised disclosure, or access.

10. Your Rights

Under the General Data Protection Regulation, you have the following rights:

  • Right of access
  • Right to rectification
  • Right to erasure
  • Right to restriction of processing
  • Right to data portability
  • Right to object

If you wish to exercise your rights, please contact us using the contact details above.

11. Right to Lodge a Complaint

If you are dissatisfied with our processing of your personal data, you may lodge a complaint with:

The Danish Data Protection Agency (Datatilsynet)
www.datatilsynet.dk

12. Changes to this Privacy Policy

We reserve the right to update this privacy policy. The current version will always be available on our website.

Last updated: 2026-01-30